Blob Blame Raw
------------------------------------------------------------------------
r7452 | cigamit | 2014-06-15 17:34:39 -0600 (Sun, 15 Jun 2014) | 1 line

-bug#0002453: CVE-2014-4002 Cross-Site Scripting Vulnerability
------------------------------------------------------------------------
Index: branches/0.8.8/host_templates.php
===================================================================
--- branches/0.8.8/host_templates.php	(revision 7451)
+++ branches/0.8.8/host_templates.php	(revision 7452)
@@ -117,6 +117,10 @@
 function form_actions() {
 	global $colors, $host_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/cdef.php
===================================================================
--- branches/0.8.8/cdef.php	(revision 7451)
+++ branches/0.8.8/cdef.php	(revision 7452)
@@ -158,6 +158,10 @@
 function form_actions() {
 	global $colors, $cdef_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+	
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/data_queries.php
===================================================================
--- branches/0.8.8/data_queries.php	(revision 7451)
+++ branches/0.8.8/data_queries.php	(revision 7452)
@@ -195,6 +195,10 @@
 function form_actions() {
 	global $colors, $dq_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/data_sources.php
===================================================================
--- branches/0.8.8/data_sources.php	(revision 7451)
+++ branches/0.8.8/data_sources.php	(revision 7452)
@@ -307,6 +307,10 @@
 function form_actions() {
 	global $colors, $ds_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/host.php
===================================================================
--- branches/0.8.8/host.php	(revision 7451)
+++ branches/0.8.8/host.php	(revision 7452)
@@ -175,6 +175,10 @@
 function form_actions() {
 	global $colors, $device_actions, $fields_host_edit;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/data_input.php
===================================================================
--- branches/0.8.8/data_input.php	(revision 7451)
+++ branches/0.8.8/data_input.php	(revision 7452)
@@ -153,6 +153,10 @@
 function form_actions() {
 	global $colors, $di_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/graph_templates.php
===================================================================
--- branches/0.8.8/graph_templates.php	(revision 7451)
+++ branches/0.8.8/graph_templates.php	(revision 7452)
@@ -164,6 +164,10 @@
 function form_actions() {
 	global $colors, $graph_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/graphs.php
===================================================================
--- branches/0.8.8/graphs.php	(revision 7451)
+++ branches/0.8.8/graphs.php	(revision 7452)
@@ -267,6 +267,11 @@
 
 function form_actions() {
 	global $colors, $graph_actions;
+
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));
Index: branches/0.8.8/data_templates.php
===================================================================
--- branches/0.8.8/data_templates.php	(revision 7451)
+++ branches/0.8.8/data_templates.php	(revision 7452)
@@ -254,6 +254,10 @@
 function form_actions() {
 	global $colors, $ds_actions;
 
+	/* ================= input validation ================= */
+	input_validate_input_number(get_request_var_post('drp_action'));
+	/* ==================================================== */
+
 	/* if we are to save this form, instead of display it */
 	if (isset($_POST["selected_items"])) {
 		$selected_items = unserialize(stripslashes($_POST["selected_items"]));